IZN1013 Information Assurance III - WebInspect

Twitter Facebook
Apply
Location
Bethesda, MD
Job Type
Direct Hire
Date
Nov 17, 2017
Job ID
2542958

Information Assurance (Senior IT Security Specialist (Security Devices)) Level III
WebInspect SME

Location: Bethesda, MD
Clearance: Clearable US Citizen (Public Trust)


Overview:

Our great client is a leading provider of cloud managed services, agile software development, DevOps, systems engineering, IT service management and risk analytics.  We work collaboratively with our customers to solve their biggest challenges through a commitment to delivering innovation, agility, and maximum value. Our employees are empowered to think outside of the box and provide innovative solutions to our customers and provide measurable cost savings.

Position Description:

Demonstrated experience implementing, managing, optimizing and supporting security systems. Implement, manage, support and optimize security solutions across the breadth of a large-scale enterprise environment. Effectively communicate technical topics and solutions to multiple stakeholders, including program leadership, project management, and customers using strong written and verbal communication skills.  Provide expert support of the enterprise infrastructure, implementing security components including appliances, jump boxes, and scanning tools.  Provide maintenance support to security components including upgrading firmware and patching.  Support security incident troubleshooting and resolution.  
Manage, implement and maintain security tools such as:

  • Remote Access tools (Xceedium Gatekeeper)
  • System and Network Logging tools (ArcSight, Netwitness)
  • Server, Workstation, network, application, and database scanning tools (Tenable Nessus, eEye/beyondtrust Retina Scanner, HP WebInspect, AppDetective/DBProtect)
  • Identity Management and e-commerce tools (Anakam, Tivoli, WebSphere)
  • Desktop Monitoring and Antivirus tools (McAfee ePolicy Orchestrator, IBM Proventia IDS/IPS, IBM Rational Policy Scanner
  • Tivoli - Websphere Operations Center 
  • Cisco Security Manager
  • Firewall Service Modules (FWSM)
  • IPS/IDS modules 
  • ISS Proventia (Intrusion Detection)
  • ArcSight Loggers and Connector
  • Splunk 
  • Xceedium Gatekeeper 
  • Fidelis XPS (extrusion/leakage detection)
  • McAfee ePolicy Orchestrator Console
  • Anti-Virus 
  • Rogue System Detection
  • Host Intrusion Prevention (HIPS)
  • Device Control 
  • Endpoint Encryption 
  • Application Control 
  • Data Loss Prevention (DLP)
  • Change Control 
  • McAfee ePolicy Orchestrator Console
  • Netwitness 
  • AppDectective/DBProtect
  • Tenable Nessus 
  • HP Fortify 
  • Web Inspect 
  • NetMapper (OPNET) 
  • Anakam Two Factor Authentication (TFA)
  • Rational AppScan (Vulnerability Scanning)
  • Rational Policy Tester
  • Proventia HIDS 
  • Tivoli Access Manager for e-Business (TAMeB)
  • Tivoli Directory Integrator (TDI)
  • Tivoli Directory Server
  • Tivoli Federated Identity Manager
  • Tivoli Identity Manager
  • Tivoli WebSeal (reverse Proxy)
  • WebSphere DataPower (XML gateway)
  • Manage inventory for all devices and validation of current licenses
  • Manage and implement configuration changes, break-fix, upgrades and patches for all security appliances
    • Create scripts and processes for the implementation of all configuration changes, break- fixes, upgrades and patches. These scripts must be written so they may also be implemented by other service contractors (i.e. the NOC staff) at the government’s behest. 
    • Generate schedules for deployment of patches and upgrades; coordinate with the NOC; EOC; DHS; SOC or other stakeholders as appropriate.
  • Escalate to vendor support when required
  • Coordinate with NOC and SOC to integrate security appliance alerts into their primary monitoring tools
  • Maintain documentation for all security appliance changes and process flows
    • Document all process and procedures
    • Post documents to USCIS EID SharePoint site
    • Serve as the technical experts for security appliance and or security services.
    • Coordinate with Engineering teams to provide technical advice and assistance
    • Provide consulting to assist the engineering team with projects to expand the existing security capability
    • Coordinate with vendors for appliance break/fix issues and return
    • Generate schedules for returning appliances and racking the replaced appliances.
  • Coordinate with Tier III/IV (NOC/SOC) support to address security appliance issues/outages
  • Review and provide recommendations to government managers for USCIS, DHS and OneNet Change Request that are reviewed at the Change Request boards.
  • Create a tools analysis report, and provide the government with recommendations on cost savings.
  • Scan for viruses on files being brought into the unclassified and classified networks and for file transfers between the networks. The cross stwork data transfers occur through all three networks:  A LAN, HSDN and C LAN.  The levels of classification for the classified systems are Secret and TS/SCI.
  • Provide weekly performance reports for the devices above
  • Create reports using security appliance primary administration tools (i.e. Cisco CSM, and ArcSight Console)
  • Review reports for Firewall rules, Network routes, Security Appliances, and Performance Appliances; provide analysis and make recommendations on optimizing the network in relation to these areas. 
  • Create and maintain a diagram of the Network and Security and Appliances. 
  • Create and maintain inventory of the network devices and appliances
  • Manage inventory for all devices, validate the current license, and generate a report which details which appliances are operating with current licenses; and notify the government in the cases where expiration is imminent within 180 days or less. 
  • Manage and implement configuration changes, break-fix, upgrades and patches for all security appliances
    • Create scripts and processes for the implementation of all configuration changes, break- fixes, upgrades and patches. These scripts must be written so they may also be implemented by other service contractors (i.e. the NOC staff) at the government’s behest. 
    • Generate schedules for deployment of patches and upgrades; coordinate with the NOC; EOC; DHS; SOC or other stakeholders as appropriate.
    • Escalate to vendor support when required in accordance with USCIS Standard Operating Policies, and/or Remedy Knowledge Management scripts.
  • Coordinate with NOC and SOC to integrate appliance alerts into their primary monitoring tools
  • Maintain documentation for all security appliance changes and process flows
    • Document all process and procedures
    • Post documents to USCIS EID SharePoint site
  • Serve as the technical experts for security appliance and or security services.
    • Coordinate with Engineering teams to provide technical advice and assistance
    • Provide consulting to assist the engineering team with projects to expand the existing capability
  • Coordinate with vendors for appliance break/fix issues and return Merchandise Authorization (RMA)
  • Generate schedules for returning appliances and racking the replaced appliances.
  • Coordinate with Tier III/IV (NOC/SOC) support to address security appliance issues/outages
  • Review and provide recommendations to government managers for USCIS, DHS and OneNet Change Request that are reviewed at the Change Request boards.
Qualifications for this position include:
  • 10 years’ experience
  • Minimum of 5 years’ experience in IT network security administration in an enterprise environment
  • Demonstrated experience implementing, managing, optimizing and supporting security solutions
  • Domain expertise for identity and access management, threat and vulnerability management, audit logging and monitoring, and compliance/technical control engineering
  • Experience with remote access tools (Xceedium Gatekeeper)
  • Experience with system and network logging tools (ArcSight, Netwitness)
  • Experience with workstation, application & database server scanning tools (Tenable Nessus, eEye/beyondtrust Retina Scanner, HP WebInspect, AppDetective/DBProtect)
  • Familiarity with Identity Management and e-commerce tools (Anakam, Tivoli, WebSphere) 
Required Certification:
  • CCNA Security Certification 
Additional Desired Skills, Certifications and Experience:
  • Knowledge of federal security regulatory requirements
  • Experience assisting presentations to Security Governance boards/committees
  • Expert-level security device and solutions knowledge
Education: Bachelor’s Degree